$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft File: 25K4P0wYeDkNakTmrtV6d1ImNRI.mft (raw, json) Hash identifier: jv6DoDYp9WRdbkbOK60bP6XeaaX6RnGGsZw/v+G/zJI= Subject key identifier: 03:64:EF:D1:C5:76:E2:BB:7B:DC:23:6F:39:C3:2A:99:F0:A8:33:C4 Authority key identifier: DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 Certificate issuer: /CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Certificate serial: 1C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft Manifest number: 1C3F Signing time: Sat 04 May 2024 16:38:23 +0000 Manifest this update: Sat 04 May 2024 16:38:22 +0000 Manifest next update: Sat 11 May 2024 16:38:22 +0000 Files and hashes: 1: 25K4P0wYeDkNakTmrtV6d1ImNRI.crl (hash: lKhtyp2yDZBzJTiKmXg21oNIgshhT/tK7pIVAUbgsO4=) 2: AB9480A6BB6811E69E8D1212C4F9AE02.roa (hash: rrxARAVhnCadOERHFV09VWaepwpZuOKaQNvTjpcjpF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7241 (0x1c49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD5B/serialNumber=DB92B83F4C1878390D6A44E6AED57A7752263512 Validity Not Before: May 4 16:38:22 2024 GMT Not After : May 11 16:38:22 2024 GMT Subject: CN=6636647e-6bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:36:69:e8:44:0d:83:f1:dc:eb:e7:6d:78: 07:b6:2b:84:47:2d:25:b6:b6:06:ae:02:d8:34:32: 7d:96:56:eb:19:0c:2d:2e:61:5d:14:00:8f:d2:0e: 00:74:78:df:bd:38:27:99:8c:8e:95:6e:f5:d2:df: eb:e8:58:f3:c6:f7:f5:51:23:4c:bd:c4:df:2d:fd: 58:40:66:63:0c:c6:b8:a9:40:9b:04:62:23:d7:42: e6:c9:76:52:64:b4:25:55:9b:42:57:35:84:64:e7: e5:83:93:ee:de:e4:42:88:5d:a2:b0:0d:38:48:1e: a9:f4:03:f1:4a:d6:5d:90:f8:e7:41:6e:f4:7d:4e: 7f:f1:61:ec:9e:aa:f9:30:a4:33:f9:2d:cf:f3:fc: a3:40:2f:b7:06:d7:43:4c:68:0e:03:4d:21:72:bf: 38:d2:8f:e8:a5:31:39:9a:a5:2a:2a:b6:9e:cf:eb: e8:02:59:f5:38:36:1e:d2:e6:15:6a:d5:f9:ca:a5: bb:b1:cd:5b:e9:d6:83:b0:26:ef:77:7d:9b:c3:ff: 00:2d:2b:e3:93:31:20:7d:d2:d2:b1:84:3f:28:8e: 19:f9:c8:05:86:06:e5:0d:96:ac:85:e0:e9:fe:32: 9b:b3:70:7f:47:e7:b4:32:40:b2:53:bd:ed:cb:1f: 92:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:64:EF:D1:C5:76:E2:BB:7B:DC:23:6F:39:C3:2A:99:F0:A8:33:C4 X509v3 Authority Key Identifier: keyid:DB:92:B8:3F:4C:18:78:39:0D:6A:44:E6:AE:D5:7A:77:52:26:35:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25K4P0wYeDkNakTmrtV6d1ImNRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD5B/1702FC3EBB6711E6AE24040FC4F9AE02/25K4P0wYeDkNakTmrtV6d1ImNRI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:d6:a8:be:5f:92:60:c0:da:a9:40:a9:df:27:47:57:0c:7a: 63:81:a8:98:d8:61:b0:1d:88:9b:4c:f7:59:62:4d:8e:97:76: fc:c1:f8:68:26:e1:c6:e1:d8:70:9c:96:14:ba:4a:c9:a7:9a: e6:02:26:a1:7b:73:5a:4b:92:af:a9:5c:1f:fb:71:c7:c3:40: fa:83:ad:72:ad:76:5a:dc:ad:ac:7d:cf:27:72:71:b0:07:2b: c4:55:0d:bb:6c:fb:d4:9b:e4:3f:b4:d1:ba:28:40:5d:8d:1b: 85:44:b2:01:b7:ef:95:37:f0:69:a2:b5:c7:c4:1d:0f:5f:63: f3:af:14:95:0b:20:fa:7d:38:a6:17:54:69:db:99:11:4b:46: 15:b4:44:c6:51:83:49:4e:97:54:a9:81:9a:f0:cb:be:8d:6d: 75:04:4e:e8:62:85:37:b1:86:bc:a3:2e:a9:58:39:01:ec:95: b6:91:ce:ad:7c:cf:35:ae:73:49:23:35:cc:b7:7b:b4:5c:da: 92:73:34:df:a6:9e:ec:c6:64:80:8c:9c:56:0b:45:17:13:48: 65:8b:31:bf:80:cb:dd:d7:d8:1d:06:29:17:3a:d3:c2:df:08: 12:f3:86:63:c4:7b:1a:f1:9a:a3:0f:56:36:6c:ef:00:1f:7f: df:86:30:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJENUIxMTAvBgNVBAUTKERCOTJCODNGNEMxODc4MzkwRDZBNDRFNkFFRDU3QTc3 NTIyNjM1MTIwHhcNMjQwNTA0MTYzODIyWhcNMjQwNTExMTYzODIyWjAYMRYwFAYD VQQDEw02NjM2NjQ3ZS02YmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNE2aehEDYPx3OvnbXgHtiuERy0ltrYGrgLYNDJ9llbrGQwtLmFdFACP0g4A dHjfvTgnmYyOlW710t/r6Fjzxvf1USNMvcTfLf1YQGZjDMa4qUCbBGIj10LmyXZS ZLQlVZtCVzWEZOflg5Pu3uRCiF2isA04SB6p9APxStZdkPjnQW70fU5/8WHsnqr5 MKQz+S3P8/yjQC+3BtdDTGgOA00hcr840o/opTE5mqUqKraez+voAln1ODYe0uYV atX5yqW7sc1b6daDsCbvd32bw/8ALSvjkzEgfdLSsYQ/KI4Z+cgFhgblDZasheDp /jKbs3B/R+e0MkCyU73tyx+SDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANk79HF duK7e9wjbznDKpnwqDPEMB8GA1UdIwQYMBaAFNuSuD9MGHg5DWpE5q7VendSJjUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ1Qi8xNzAyRkMzRUJC NjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVEa05ha1RtcnRWNmQxSW1O UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1SzRQMHdZZURrTmFrVG1ydFY2ZDFJbU5SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ1Qi8xNzAyRkMzRUJCNjcxMUU2QUUyNDA0MEZDNEY5QUUwMi8yNUs0UDB3WWVE a05ha1RtcnRWNmQxSW1OUkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm1qi+X5JgwNqpQKnfJ0dXDHpjgaiY2GGwHYibTPdZYk2Ol3b8wfho JuHG4dhwnJYUukrJp5rmAiahe3NaS5KvqVwf+3HHw0D6g61yrXZa3K2sfc8ncnGw ByvEVQ27bPvUm+Q/tNG6KEBdjRuFRLIBt++VN/BporXHxB0PX2PzrxSVCyD6fTim F1Rp25kRS0YVtETGUYNJTpdUqYGa8Mu+jW11BE7oYoU3sYa8oy6pWDkB7JW2kc6t fM81rnNJIzXMt3u0XNqSczTfpp7sxmSAjJxWC0UXE0hlizG/gMvd19gdBikXOtPC 3wgS84ZjxHsa8ZqjD1Y2bO8AH3/fhjC8 -----END CERTIFICATE-----Generated at Sat May 4 17:19:49 2024 by rpki-client on console-fra.rpki-client.org